CVE-2017-15343

Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. The software does not sufficiently validate certain field in SCTP messages, a remote unauthenticated attacker could send a crafted SCTP message to the device. Successful exploit could system reboot.

CVSS v3 7.5 HIGH
CVSS v2.0 7.8 HIGH

7.5^/10

CVSS v3 : HIGH

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

7.8^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-sctp-en	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:huawei:ar120-s_firmware:v200r006c10:::::::*
	cpe:2.3:o:huawei:ar120-s_firmware:v200r007c00:::::::*
	cpe:2.3:o:huawei:ar120-s_firmware:v200r008c20:::::::*
	cpe:2.3:o:huawei:ar120-s_firmware:v200r008c30:::::::*
	cpe:2.3:o:huawei:ar1200_firmware:v200r007c01:::::::*
	cpe:2.3:o:huawei:ar1200_firmware:v200r007c02:::::::*
	cpe:2.3:o:huawei:ar3200_firmware:v200r006c11:::::::*
	cpe:2.3:o:huawei:ar3200_firmware:v200r008c00:::::::*
	cpe:2.3:o:huawei:ar3200_firmware:v200r008c10:::::::*

cpe:2.3:h:huawei:ar3200:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-02-15 16:29

Updated : 2023-12-10 12:30

NVD link : CVE-2017-15343

Mitre link : CVE-2017-15343

CVE.ORG link : CVE-2017-15343

JSON object : View

Products Affected

huawei

ar1200_firmware
ar3200
ar120-s_firmware
ar3200_firmware

CWE

CWE-190

Integer Overflow or Wraparound

{"id": "CVE-2017-15343", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2018-02-15T16:29:00.907", "references": [{"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-sctp-en", "tags": ["Vendor Advisory"], "source": "psirt@huawei.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-190"}]}], "descriptions": [{"lang": "en", "value": "Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. The software does not sufficiently validate certain field in SCTP messages, a remote unauthenticated attacker could send a crafted SCTP message to the device. Successful exploit could system reboot."}, {"lang": "es", "value": "Huawei AR3200 con software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20 y V200R008C30 tiene una vulnerabilidad de desbordamiento de enteros. El software no valida suficientemente ciertos campos en los mensajes SCTP, por lo que un atacante remoto no autenticado podr\u00eda enviar un mensaje SCTP manipulado al dispositivo. Una explotaci\u00f3n con \u00e9xito podr\u00eda provocar el reinicio del sistema."}], "lastModified": "2018-02-22T14:39:55.157", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:huawei:ar120-s_firmware:v200r006c10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9EC3BAF-54F8-4EEC-A99B-D8BD458EE638"}, {"criteria": "cpe:2.3:o:huawei:ar120-s_firmware:v200r007c00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5DD9E894-321E-4A61-9DA6-677042DDD739"}, {"criteria": "cpe:2.3:o:huawei:ar120-s_firmware:v200r008c20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79DA91B4-77A6-4A37-8799-5E548184D49C"}, {"criteria": "cpe:2.3:o:huawei:ar120-s_firmware:v200r008c30:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42376C56-573F-4A88-B18E-43F636B17B41"}, {"criteria": "cpe:2.3:o:huawei:ar1200_firmware:v200r007c01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "334E0095-CF32-497D-85AC-AE8AEDE4EC50"}, {"criteria": "cpe:2.3:o:huawei:ar1200_firmware:v200r007c02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4459EF03-890E-446E-8702-8F7CE499FB48"}, {"criteria": "cpe:2.3:o:huawei:ar3200_firmware:v200r006c11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8BE6310-A42C-4BB3-BB02-7CE6F4FF340D"}, {"criteria": "cpe:2.3:o:huawei:ar3200_firmware:v200r008c00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A842B77-C902-4B20-A171-3F98C75E6160"}, {"criteria": "cpe:2.3:o:huawei:ar3200_firmware:v200r008c10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC61DFB2-E24C-4148-892E-A14F1EC3F9CA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:huawei:ar3200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9309E1AA-0C4E-422C-9307-A8DD0AE5D576"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@huawei.com"}